Cross-Site Request Forgery (CSRF) vulnerability in GeroNikolov Instant Breaking News instant-breaking-news allows Stored XSS.This issue affects Instant Breaking News: from n/a through <= 1.0.CreditsNguyen Xuan Chien | Patchstack Bug Bounty ProgramReferenceshttps://patchstack.com/database/Wordpress/Plugin/instant-breaking-news/vulnerability/wordpress-instant-breaking-news-plugin-1-0-cross-site-request-forgery-csrf-vulnerability?_s_id=cve
